Google To Remove A Symantec Root Certificate From Chrome And Android

[Lucian Armasu]

Google will remove one of Symantec's root certificates from Chrome and Android, following an announcement by Symantec that this root will no longer adhere to the CA/Browser Forum’s Baseline Requirements.

Google To Remove A Symantec Root Certificate From Chrome And Android : Read more

 

[firefoxx04]

Good for google.

Symantec sucks anyways

 

[captaincharisma]

considering Symantec's dire history it will probably improve performance by removing it

 

[Quixit]

It would probably be a good idea to delete this certificate from your Windows PCs as well. Can't be too careful.

 

[Haravikk]

On OS X.10 I found two certificates named "Class 3 Public Primary Certification Authority" but both are signed by Verisign, not sure how we're meant to know which ones belong to Symantec.

 

[SSS_DDK]

Actually had this problem on a friend's laptop (Mac) where Safari wouldn't open the wizzair website. Had to install Firefox to open the website. If this is linked to the bad certificate, let's hope not many more websites keep using it.

 

[Brzeczyszczykiewicz]

On OS X.10 I found two certificates named "Class 3 Public Primary Certification Authority" but both are signed by Verisign, not sure how we're meant to know which ones belong to Symantec.

From Wiki:

In 2010, Verisign sold its authentication business unit – which included SSL certificate, PKI, Verisign Trust Seal, and Verisign Identity Protection (VIP) services – to Symantec for $1.28 billion.

 

[JonnyDough]

Is Google doing this because Symantec is working with the NSA? If so, good for you Google.

 

[Kostas Kritsilas]

Google is doing this because Symantec is taking too many liberties with assigning certificates, both for certificates for companies that never requested them (including Google certificates) and its statement that it will not abide by the CA/Browser forum requirements,

Symantec is basically abusing its authority as a trusted certificate authority, so Google is saying it is no longer trusted. Google did warn Symantec in the past over the issuing of Google certificates that it had never requested (Google is a certificate authority, so it doesn't need Symantec to issue certificates on Google's behalf).

 

[f-14]

i already removed them after the first report symantec was handing out trust like candy to the world for free and i have been removing verisign certificates since windows95b